087b8dbe81365cd39ecba35192463ac0 | Triage

Sharing

General

Target

087b8dbe81365cd39ecba35192463ac0
Size

20KB
MD5

087b8dbe81365cd39ecba35192463ac0
SHA1

84f2eb025f8c1e54bae566553bb396873a912dcc
SHA256

5160d9c237258237475772cb10a081cbdd64647e31fb66f6da445587328920ba
SHA512

f71b9f28af69859c3bec4e2820a65b8ae94df99fb09f1ca004913897158590489efb7f233bd0710db7247e9d9cdc8006097e8817241d3058a1fbd2502a9c1ead
SSDEEP

384:kHzexySxF2FENfGzB5AJiQiFeiKi6iPkWZNW/:kTexygFh6BHVpTj2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
087b8dbe81365cd39ecba35192463ac0

Files

087b8dbe81365cd39ecba35192463ac0
.exe windows:4 windows x86 arch:x86

45aa8eda173f07ac03fdbab992cddcaf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord632
ord526
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord608
ord531
ord716
ord576
ord685
ord100

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ